| ALMA-09-013220 - AlmaLinux OS 9 /etc/group file must have mode 0644 or less permissive to prevent unauthorized access. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-013440 - The /boot/grub2/grub.cfg file must be owned by root. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-013770 - AlmaLinux OS 9 /etc/gshadow- file must be owned by root. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-014430 - AlmaLinux OS 9 must disable the user list at logon for graphical user interfaces. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-014540 - All AlmaLinux OS 9 local interactive user accounts must be assigned a home directory upon creation. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-015860 - AlmaLinux OS 9 must not have accounts configured with blank or null passwords. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-016410 - AlmaLinux OS 9 /etc/passwd file must be owned by root. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-016520 - AlmaLinux OS 9 /etc/passwd file must have mode 0644 or less permissive to prevent unauthorized access. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-017070 - AlmaLinux OS 9 /etc/shadow file must be owned by root. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-017180 - AlmaLinux OS 9 /etc/shadow file must have mode 0000 to prevent unauthorized access. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-017840 - AlmaLinux OS 9 must define default permissions for logon and nonlogon shells. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-018830 - AlmaLinux OS 9 firewall must employ a deny-all, allow-by-exception policy for allowing connections to other systems. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-021030 - AlmaLinux OS 9 SSH public host key files must have mode 0644 or less permissive. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-022130 - All AlmaLinux OS 9 local initialization files must have mode 0740 or less permissive. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-022240 - AlmaLinux OS 9 must have the gnutls-utils package installed. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-023010 - AlmaLinux OS 9 must disable the use of user namespaces. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-024770 - The SSH daemon must perform strict mode checking of home directory configuration files. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-025540 - AlmaLinux OS 9 must use a separate file system for /var/tmp. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-026090 - AlmaLinux OS 9 must prevent device files from being interpreted on file systems that contain user home directories. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-026310 - AlmaLinux OS 9 must mount /boot with the nodev option. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-026640 - AlmaLinux OS 9 must mount /dev/shm with the noexec option. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-027080 - AlmaLinux OS 9 must mount /tmp with the nosuid option. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-027850 - AlmaLinux OS 9 must mount /var with the nodev option. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-028400 - AlmaLinux OS 9 fapolicy module must be installed. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-028620 - AlmaLinux OS 9 must prevent the chrony daemon from acting as a server. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-028840 - AlmaLinux OS 9 must not have the quagga package installed. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-029720 - AlmaLinux OS 9 must be configured to disable Bluetooth. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-030160 - AlmaLinux OS 9 must disable mounting of squashfs. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-031040 - A graphical display manager must not be installed on AlmaLinux OS 9 unless approved. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-032030 - AlmaLinux OS 9 must require users to provide a password for privilege escalation. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | ACCESS CONTROL |
| ALMA-09-033240 - AlmaLinux OS 9 SSHD must accept public key authentication. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | IDENTIFICATION AND AUTHENTICATION |
| ALMA-09-033350 - AlmaLinux OS 9 must have the opensc package installed. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | IDENTIFICATION AND AUTHENTICATION |
| ALMA-09-033570 - AlmaLinux OS 9 must have the pcsc-lite package installed. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | IDENTIFICATION AND AUTHENTICATION |
| ALMA-09-033680 - AlmaLinux OS 9 must implement certificate status checking for multifactor authentication. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | IDENTIFICATION AND AUTHENTICATION |
| ALMA-09-034120 - AlmaLinux OS 9 SSHD must not allow blank passwords. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | IDENTIFICATION AND AUTHENTICATION |
| ALMA-09-035000 - AlmaLinux OS 9 must prevent a user from overriding the disabling of the graphical user interface automount function. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | IDENTIFICATION AND AUTHENTICATION |
| ALMA-09-035110 - AlmaLinux OS 9 must prevent a user from overriding the disabling of the graphical user interface autorun function. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | IDENTIFICATION AND AUTHENTICATION |
| ALMA-09-035660 - AlmaLinux OS 9 must disable account identifiers (individuals, groups, roles, and devices) after 35 days of inactivity. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | IDENTIFICATION AND AUTHENTICATION |
| ALMA-09-035770 - AlmaLinux OS 9 must enforce password complexity by requiring that at least one lowercase character be used. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | IDENTIFICATION AND AUTHENTICATION |
| ALMA-09-036320 - AlmaLinux OS 9 must enforce password complexity by requiring that at least one special character be used. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | IDENTIFICATION AND AUTHENTICATION |
| ALMA-09-036870 - AlmaLinux OS 9 must require the maximum number of repeating characters be limited to three when passwords are changed. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | IDENTIFICATION AND AUTHENTICATION |
| ALMA-09-037090 - AlmaLinux OS 9 must require the change of at least eight characters when passwords are changed. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | IDENTIFICATION AND AUTHENTICATION |
| ALMA-09-037860 - AlmaLinux OS 9 must not have any telnet packages installed. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | IDENTIFICATION AND AUTHENTICATION |
| ALMA-09-038080 - Passwords for new users or password changes must have a 60-day maximum password lifetime restriction in /etc/login.defs. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | IDENTIFICATION AND AUTHENTICATION |
| ALMA-09-039070 - AlmaLinux OS 9, for PKI-based authentication, must validate certificates by constructing a certification path (which includes status information) to an accepted trust anchor. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | IDENTIFICATION AND AUTHENTICATION |
| ALMA-09-039620 - AlmaLinux OS 9 must have the packages required for encrypting offloaded audit logs installed. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | IDENTIFICATION AND AUTHENTICATION |
| ALMA-09-039840 - AlmaLinux OS 9 must have the crypto-policies package installed. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | MAINTENANCE |
| ALMA-09-040060 - AlmaLinux OS 9 must implement a FIPS 140-3-compliant systemwide cryptographic policy. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
| ALMA-09-040170 - AlmaLinux OS 9 must be configured so that all network connections associated with SSH traffic are terminated after 10 minutes of becoming unresponsive. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | ACCESS CONTROL, MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
| ALMA-09-040720 - AlmaLinux OS 9 must disable access to network bpf system call from nonprivileged processes. | DISA Cloud Linux AlmaLinux OS 9 STIG v1r5 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
